agenttesla | 9360b84645809c8bb4387bf69a84ab8af0c3e01bd8072c60c1b5d728820b3cf9 | Triage

Sharing

General

Target

FiveFinder.exe
Size

1.4MB
Sample

240426-dcwsvahd3v
MD5

1e941bebf9fe16bce5c1967b5afffba8
SHA1

b4a4cdff52f85f12cd3b4e1f251d46f424302f29
SHA256

9360b84645809c8bb4387bf69a84ab8af0c3e01bd8072c60c1b5d728820b3cf9
SHA512

64577f9c6b5fb0613f56365ff98a2e3d632a70981ff801cf2632d81fa17c44b1cc7419931c21d2c0f0107dd21846c25fe450787dad23b92a48c3ecb568401435
SSDEEP

24576:HSc5TMSc5TeITMvRFhRRbNWoCfkYSEH3OqtwIuXckqjVnlqud+/2P+AkwEJ:HSZS5ITYbNbNWo4kSH3OqtwIrkqXfd+r

Score

10^/10

agenttesla keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  FiveFinder.exe
- Size
  
  1.4MB
- MD5
  
  1e941bebf9fe16bce5c1967b5afffba8
- SHA1
  
  b4a4cdff52f85f12cd3b4e1f251d46f424302f29
- SHA256
  
  9360b84645809c8bb4387bf69a84ab8af0c3e01bd8072c60c1b5d728820b3cf9
- SHA512
  
  64577f9c6b5fb0613f56365ff98a2e3d632a70981ff801cf2632d81fa17c44b1cc7419931c21d2c0f0107dd21846c25fe450787dad23b92a48c3ecb568401435
- SSDEEP
  
  24576:HSc5TMSc5TeITMvRFhRRbNWoCfkYSEH3OqtwIuXckqjVnlqud+/2P+AkwEJ:HSZS5ITYbNbNWo4kSH3OqtwIrkqXfd+r
Score

10^/10

agenttesla keylogger spyware stealer trojan
- AgentTesla
  Agent Tesla is a remote access tool (RAT) written in visual basic.
  keylogger trojan stealer spyware agenttesla
- AgentTesla payload
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

agentteslakeyloggerspywarestealertrojan

behavioral2

agentteslakeyloggerspywarestealertrojan